CVEs classified under CWE-419, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-50588 — CVSS 9.8 (critical): An unauthenticated attacker with access to the local network of the medical office can use known default credentials to gain remote DBA…
CVE-2024-2414 — CVSS 8.8 (high): The primary channel is unprotected on Movistar 4G router affecting E version S_WLD71-T1_v2.0.201820. This device has the 'adb' service open…
CVE-2023-30859 — CVSS 7.2 (high): Triton is a Minecraft plugin for Spigot and BungeeCord that helps you translate your Minecraft server. The CustomPayload packet allows you…
CVE-2025-24030 — CVSS 7.1 (high): Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. A user with…
CVE-2022-33932 — CVSS 5.3 (medium): Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an unprotected primary channel…
CVE-2024-39886 — CVSS 3.7 (low): TONE store App version 3.4.2 and earlier contains an issue with unprotected primary channel. Since TONE store App communicates with TONE…